We’re getting close to having enough bugs documented to fill an entire month, and we’d be prepared to begin even without the final few, however other Month-of projects continue to claim the month in advance of us and we’d rather not overlap with any other projects.
Who claimed June? Why, none other than the Month of Search Engine Bugs.
In the advisory template, you may have noticed two header fields titled Classification and Attributes. We have come up with a list of meatspace classifications for the bugs to help identify what area(s) of the meatspace a particular bug applies to:
Whereas “attributes” indicate what type of security issue the bug is as well as it’s properties, such as:
The Month of Meat-Space Bugs CFB is now officially open! We already have quite a few and can easily fill a month with minimal additional brainstorming and development, however we are more about the quality than the quantity. If someone submits a meatspace bug that is obviously more inventive, novel, or clever than one we already have on the list, that one will get bumped in favor of the better bug! In this way, this month of bugs is also a kind of contest to choose the top 30 or so unique and inventive meatspace bugs.
To submit your bug, please send full details in either your own ready-to-publish advisory form which we can assign a MOMSB ID to, or full details in a format that we can fit into our standard MOMSB advisory template, to the MOMSB editor:
I)ruid <druid@caughq.org>
Note, if you send us a ready-to-publish advisory, we will retain your original format with the exception of the addition of a MOMSB ID.
If you are unfamiliar with the term “meatspace“, it is a dysphemism for real life or the physical world, and conceived as the opposite of cyberspace or virtual reality. The term originated in science fiction literature, specifically the cyberpunk genre, but it has become increasingly common in general usage, as a reference to transactions or interactions which occur in the presence of physical bodies (”meat”), rather than online or electronically. The term may be used as a conscious rejection of the derogatory connotations inherent in the term “real life” and the implication that interactions in cyberspace are less real or meaningful than physical interactions.
This blog was created for the Month of Meat-Space Bugs (MOMSB). In a currently undisclosed future month, we will be disclosing one meatspace security bug per day for an entire month. This project was inspired by and is in pseudo-parody of the Month of MySpace Bugs, which itself is a kind of parody of previous “Month of” security bug disclosure projects. This fad was started by HD Moore’s Month of Browser Bugs, which was followed by many others such as the months of Apple bugs, PHP bugs, and many more.
